wo 2005/025178 



11 



PCT/IB2004/002815 



CLAIMS 



10 



, An authentication method for use in a system inCuding a f,«t ent«y 
(CARD) and a seoond entity (SERVER) mutually communicating by way 
L a network (NET), wherein said first entity is adapted to authentca^ 
said second entity aruJ data received from said second enwy, and 
wherein both first and second entities store the same secret key (K), 
said authentfeation method comprising the steps of: 

- receiving by said first entity a message authenticating code (MAC) 
and other parameters (RAND, SQN, AMF, ...). said message authen- 
tlcating code (MAC) being a funcUon of said secret key (K) and sard 
other parameters (RAND, SQN, AMF, ...); 

- computing by said firs, enttty an expected code (XMAC) from sa,d 
other parameters which have been received and from said secret key 
(K) stored in said first entity; 

- comparing by said first entity saW message authenticating code 
(MAC) received and said expected code (XMAC); and 

- aborting authentication if the message authenticating code (MAC) re- 
ceived and the expected code (XMAC) do not match; 

0 saw method being characterised by the further step of: 

- upda«ng in said first entity a failure counter every time the messa^ 
authenttoatmg code (MAC) received and the expected code (XMAC) 
do not match upon comparison by saW first entity. 

„ 2 The method according to claim 1 , further comprising the step of: 

: preliminary checking the failure counter by said first entity before mm- 

ating autlientication. 

3 The method according to claim 1 . further comprising the 
,„ - determining by said first entity, fnxn a sequence number (SQN) in- 
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^ ,n s^d Cher p— rs, «h.*e, sa,d "^J^'^!^ 
i„g code (MAC) and other parameters (RAND, SQN. AMF, ...) have 
been already received by said first entity; and 

sepuLe number (SQN, indicates that said message a^hent. 
" c^e (MAC) and other parameters (RAND, SQN. AMF. ) 

' :ra.:i;LnreceWedhys^d«rstent«y,aho..ngauthentica.on 

without updating said failure counter. 

4 The method according to claim 3. further comprising the step of . 
„ said failure counter to «s initial value if (i, the message au^ 

'° ' Z2ing cede (MAC) received and the expected code do ma^h 
l(ii, said sequence number (SQN) indites thatsawn^s^^^^^^^ 

JLing code (MAC) a«. omer P--'- <"^°' 
AMF. ...) have not already been received by saKi first ent«y. 

" 5 A smart card (CARD) adapted to authenticate a remote entity (SERV) 
.nrt data received from it. said smart card including: 

stortng authentication algorithms as we,, as authen.^- 
and encryption Keys including a secret key (K) whK=h ,s the same as a 
^ corresponding key stored ,nsa,d remote enuty; 

- means for recehnng from said remote entity a message authent^afing 

code (MAC) and other parameters (RAND. SQN. AMF, .. .); 
. mearl for compufing an expected code (XMAC, from sa,d ott«r pa 

rameters and from sakJ secret key (K); 
, . ™ans for comparing saw message authenfcafing cede (MAC) re 

ceived and said expected code (XMAC); and 
. leans for aborting authentication H the message authent«^ng code 
(MAC) received and the expected code (XMAC) do not match. 
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said smart card being characensed by further oompri^nff 

. a failure counter adapted to store the number of aborton occur 

- :r ^upda^ng said faiiure counter every time the «.pa„^ 
means indicate that said message authenticating code (MAC) and 
said expected code (XMAC) do not match. 



